Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/SqfopbQ-ArcbBK3ZtHbi4Z-eM1o.roa
File: SqfopbQ-ArcbBK3ZtHbi4Z-eM1o.roa (raw, json)
Hash identifier: JA1RT3OS6zLwBAtN6PRG6GdTbyTfDuPTJsi4uqTTMU8=
Subject key identifier: 4A:A7:E8:A5:B4:3E:02:B7:1B:04:AD:D9:B4:76:E2:E1:9F:9E:33:5A
Certificate issuer: /CN=28203decd08bd47d8a9162a6e1742f3c53ea3c74
Certificate serial: 0188251388CDF8DED26612F771AAB0EEFD0E
Authority key identifier: 28:20:3D:EC:D0:8B:D4:7D:8A:91:62:A6:E1:74:2F:3C:53:EA:3C:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/SqfopbQ-ArcbBK3ZtHbi4Z-eM1o.roa
Signing time: Tue 16 May 2023 15:00:17 +0000
ROA not before: Tue 16 May 2023 15:00:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35207
IP address blocks: 2a0c:7180::/30 maxlen: 30
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:25:13:88:cd:f8:de:d2:66:12:f7:71:aa:b0:ee:fd:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28203decd08bd47d8a9162a6e1742f3c53ea3c74
Validity
Not Before: May 16 15:00:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4aa7e8a5b43e02b71b04add9b476e2e19f9e335a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0b:51:70:60:29:c5:64:4b:85:e3:b0:50:7b:
4d:8b:0b:ce:68:13:eb:05:99:30:f0:f3:0c:c3:3f:
2a:fe:2b:de:09:5a:09:72:d0:5f:03:a2:36:f2:47:
e2:ae:b0:20:81:c6:1e:18:94:5c:d8:fe:c8:2f:b6:
b8:88:38:bd:06:a7:fc:04:4a:72:65:a8:e9:b3:60:
99:d0:09:3a:95:25:39:1c:e8:0b:ab:7f:9c:5a:7f:
e7:03:93:98:c9:f8:8c:e8:d6:14:e8:86:52:04:d5:
e4:52:50:22:aa:99:98:4b:5c:0f:e5:10:0b:57:19:
6c:56:92:e4:ff:96:42:ec:0c:e3:e8:0a:50:d0:58:
e2:a6:6f:c9:df:aa:2e:be:58:2b:5a:d2:55:fb:6d:
a0:2f:da:dc:02:a8:cb:9d:3b:16:9e:53:40:90:3a:
38:a9:90:c4:0b:60:1c:dc:0c:90:4b:bf:27:f0:d2:
94:68:5e:71:d6:ec:fc:74:26:2d:0b:68:a1:95:10:
e3:af:4a:17:71:c8:51:9e:c8:07:6f:60:0a:64:d9:
b6:31:2a:fe:3b:26:4d:66:1e:23:19:6e:af:8c:28:
aa:69:91:c8:08:ae:bb:fe:75:18:3f:1e:24:dc:95:
d9:18:46:6b:b9:af:6e:f1:c5:e9:ea:7e:60:b7:04:
cd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A7:E8:A5:B4:3E:02:B7:1B:04:AD:D9:B4:76:E2:E1:9F:9E:33:5A
X509v3 Authority Key Identifier:
keyid:28:20:3D:EC:D0:8B:D4:7D:8A:91:62:A6:E1:74:2F:3C:53:EA:3C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/SqfopbQ-ArcbBK3ZtHbi4Z-eM1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:7180::/30
Signature Algorithm: sha256WithRSAEncryption
0d:3c:e4:79:1d:79:db:0d:6d:20:40:ef:db:62:32:c5:81:04:
0e:5a:70:a8:8e:36:d5:79:10:1c:13:56:b7:83:ce:8a:2b:28:
bc:ba:81:47:01:d3:71:dd:3c:96:6f:c2:3a:00:aa:a6:d6:6f:
b6:22:b6:a9:46:39:14:6b:ac:51:c6:94:13:21:43:ea:01:f7:
8d:d7:f4:d3:a7:31:19:5a:dd:02:14:f9:15:1b:36:9c:4c:92:
1b:5e:8c:9b:ea:6d:95:dc:25:d8:28:43:a3:d3:4d:c2:c5:f6:
39:74:48:66:43:58:58:55:0a:0d:a4:5e:f1:6b:d8:ad:3c:bb:
81:17:b5:b0:29:9e:96:27:02:2a:11:38:9d:6d:9a:c8:3f:40:
2b:5b:bc:d9:8f:75:99:a5:b8:ec:08:a4:ab:ad:f5:4c:d7:ad:
e4:0e:27:5f:b2:0a:98:44:c3:2f:dd:fe:1e:1e:51:94:c1:b4:
f6:84:0f:f5:f5:4d:bb:51:28:26:a3:d5:57:f4:6d:c4:47:52:
c3:78:8a:5e:60:a7:af:9a:9c:dc:a3:42:2d:55:c9:98:11:f0:
e8:1a:95:54:c1:32:00:57:71:bb:0e:44:81:5d:e2:43:c8:17:
58:b2:5a:84:a7:00:b8:16:a8:f8:27:08:ae:63:6e:26:79:f4:
55:1a:d3:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:57 2024 by rpki-client on console-fra.rpki-client.org